Semantically Rich, Oblivious Access Control Using ABAC for Secure Cloud Storage
| dc.contributor.author | Joshi, Maithilee P. | |
| dc.contributor.author | Mittal, Sudip | |
| dc.contributor.author | Joshi, Karuna Pande | |
| dc.contributor.author | Finin, Tim | |
| dc.date.accessioned | 2018-10-19T13:17:05Z | |
| dc.date.available | 2018-10-19T13:17:05Z | |
| dc.date.issued | 2017-09-11 | |
| dc.description | 2017 IEEE International Conference on Edge Computing (EDGE) | en_US |
| dc.description.abstract | Securing their critical documents on the cloud from data threats is a major challenge faced by organizations today. Controlling and limiting access to such documents requires a robust and trustworthy access control mechanism. In this paper, we propose a semantically rich access control system that employs an access broker module to evaluate access decisions based on rules generated using the organizations confidentiality policies. The proposed system analyzes the multi-valued attributes of the user making the request and the requested document that is stored on a cloud service platform, before making an access decision. Furthermore, our system guarantees an end-to-end oblivious data transaction between the organization and the cloud service provider using oblivious storage techniques. Thus, an organization can use our system to secure their documents as well as obscure their access pattern details from an untrusted cloud service provider. | en_US |
| dc.description.sponsorship | This research was supported by the Office of Naval Research under grants N00014-15-1-2228 and N00014-16-WX- 01489. We thank Dr. Seung Geol Choi (USNA), Dr. Adam Aviv (USNA), Dr. Daniel Roche (USNA) and members of the Ebiquity Research Group for their vital feedback. | en_US |
| dc.description.uri | https://ieeexplore.ieee.org/document/8029268 | en_US |
| dc.format.extent | 8 pages | en_US |
| dc.genre | conference paper pre-print | en_US |
| dc.identifier | doi:10.13016/M2KP7TV9Z | |
| dc.identifier.citation | Maithilee Joshi, Karuna Joshi, Tim Finin, "Attribute Based Encryption for Secure Access to Cloud Based EHR Systems", Cloud Computing (CLOUD) 2018 IEEE 11th International Conference on, pp. 932-935, 2018, DOI: 10.1109/IEEE.EDGE.2017.27 | en_US |
| dc.identifier.uri | 10.1109/IEEE.EDGE.2017.27 | |
| dc.identifier.uri | http://hdl.handle.net/11603/11601 | |
| dc.language.iso | en_US | en_US |
| dc.publisher | IEEE | en_US |
| dc.relation.isAvailableAt | The University of Maryland, Baltimore County (UMBC) | |
| dc.relation.ispartof | UMBC Computer Science and Electrical Engineering Department Collection | |
| dc.relation.ispartof | UMBC Faculty Collection | |
| dc.relation.ispartof | UMBC Student Collection | |
| dc.relation.ispartof | UMBC Information Systems Department | |
| dc.rights | This item is likely protected under Title 17 of the U.S. Copyright Law. Unless on a Creative Commons license, for uses protected by Copyright Law, contact the copyright holder or the author. | |
| dc.rights | © 20XX IEEE | |
| dc.subject | Access Control | en_US |
| dc.subject | Access Broker | en_US |
| dc.subject | Ontologies | en_US |
| dc.subject | Confidentiality Policy | en_US |
| dc.subject | Oblivious Storage | en_US |
| dc.subject | Cloud Computing | en_US |
| dc.subject | UMBC Ebiquity Research Group | en_US |
| dc.title | Semantically Rich, Oblivious Access Control Using ABAC for Secure Cloud Storage | en_US |
| dc.type | Text | en_US |